<?php
/**
- * A concrete HTTP request class to make HTTP requests more abstract
+ * A concrete and secured HTTP request class to make HTTP requests more abstract
*
* @author Roland Haeder <webmaster@ship-simu.org>
* @version 0.0.0
- * @copyright Copyright(c) 2007, 2008 Roland Haeder, this is free software
+ * @copyright Copyright (c) 2007, 2008 Roland Haeder, this is free software
* @license GNU GPL 3.0 or any newer version
* @link http://www.ship-simu.org
*
// Call parent constructor
parent::__construct(__CLASS__);
- // Set part description
- $this->setObjectDescription("HTTP request");
-
- // Create unique ID number
- $this->generateUniqueId();
-
// Clean up a little
$this->removeNumberFormaters();
$this->removeSystemArray();
* @return void
*/
public function prepareRequestData () {
- // Copy the $_REQUEST array
- $this->requestData = $_REQUEST;
+ // Copy GET then POST data
+ $this->requestData = array_merge($_GET, $_POST);
}
/**
// Initialize value
$value = null;
+ // Is the element set?
if ($this->isRequestElementSet($element)) {
- $value = $this->requestData[$element];
+ // Get the bare value
+ $value = $this->requestData[$element];
+
+ // Secure it against attacks
+ $value = htmlentities(strip_tags($value), ENT_QUOTES);
} // END - if
// Return the element's value
* @return void
*/
public function setRequestElement ($element, $value) {
+ error_log(__METHOD__.":{$element}={$value}");
$this->requestData[$element] = $value;
}
projects / shipsimu.git / blobdiff